Drupal is a registered trademark of Dries Buytaert
drupal 11.3.6 Update released for Drupal core (11.3.6)! drupal 10.6.6 Update released for Drupal core (10.6.6)! cms 2.1.0 Update released for Drupal core (2.1.0)! bootstrap 8.x-3.40 Minor update available for theme bootstrap (8.x-3.40). menu_link_attributes 8.x-1.7 Minor update available for module menu_link_attributes (8.x-1.7). editoria11y 2.2.22 Minor update available for module editoria11y (2.2.22). ai 1.2.13 Minor update available for module ai (1.2.13). ai 1.3.2 Minor update available for module ai (1.3.2). moderated_content_bulk_publish 2.0.51 Minor update available for module moderated_content_bulk_publish (2.0.51). moderated_content_bulk_publish 2.0.50 Minor update available for module moderated_content_bulk_publish (2.0.50). editoria11y 2.2.21 Minor update available for module editoria11y (2.2.21). eca 3.1.0 Minor update available for module eca (3.1.0). sophron 3.1.1 Minor update available for module sophron (3.1.1). ai 1.3.1 Minor update available for module ai (1.3.1). seven 2.0.0-beta6 New beta version released for theme seven (2.0.0-beta6). seven 1.0.1-beta1 First beta version released for theme seven (1.0.1-beta1). ui_patterns 8.x-1.15 Minor update available for module ui_patterns (8.x-1.15). layout_paragraphs 3.0.0-beta1 First beta version released for module layout_paragraphs (3.0.0-beta1). raven 7.3.8 Minor update available for module raven (7.3.8). bamboo_twig 6.0.7 Minor update available for module bamboo_twig (6.0.7).
← All modules

maintenance_vip

No security coverage
View on drupal.org

The Maintenance VIP module allows site administrators to grant bypass access to a Drupal site in maintenance mode using a secure, shareable URL. This is ideal for giving clients, stakeholders, or QA teams temporary access to review a site before launch, without requiring them to have a user account or log in.

Features

  • Simple URL bypass: Access the site via /vip/{your-token}.
  • Secure sessions: Generates an HTTP-only, secure cookie valid for 24 hours to prevent hijacking.
  • Easy logout: Users can drop their VIP session by visiting /vip-logout.
  • Proxy friendly: Works flawlessly behind Nginx, Varnish, or CDNs since it integrates directly with Drupal's maintenance mode service decorator.

Post-Installation

Once installed, no complex permissions or cache rebuilds are needed to manage the token.

  1. Navigate to Configuration > development > Maintenance VIP (/admin/config/system/site-information).
  2. Scroll down to the new Maintenance VIP Token field.
  3. Enter a secure, unique string (e.g., client-review-2026) and save the configuration.
  4. Enable Maintenance mode as usual.
  5. Share your link (https://yoursite.com/vip/client-review-2026) with your testers.

Additional Requirements

This module is self-contained. It requires no additional external libraries or contributed modules.

Similar projects

Modules like Maintenance Allow IP or similar IP-whitelisting solutions exist. However, whitelisting IPs is often problematic and time-consuming when clients are on mobile networks, corporate VPNs, or dynamic IPs. Maintenance VIP solves this by using a token-based approach, making it much more flexible for non-technical users while keeping the site locked.

Supporting this Module

Feel free to open issues, feature requests, or provide patches in the project's issue queue.

Activity

Total releases
2
First release
Apr 2026
Latest release
15 hours ago
Release cadence
0 days
Stability
100% stable

Releases

Version Type Release date
1.0.1 Stable Apr 8, 2026
1.0.0 Stable Apr 8, 2026